CVE-2026-31369
Privilege Bypass in PcManager Risks Service Availability
Publication date: 2026-04-21
Last updated on: 2026-05-05
Assigner: Honor Device Co., Ltd.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| honor | pcmanager | 1.0.0.2 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-269 | The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a privilege bypass issue in PcManager, a software product by Honor. It allows an attacker to bypass privilege restrictions, meaning they can gain access or perform actions that should normally be restricted.
Successful exploitation of this vulnerability may affect the availability of the service.
How can this vulnerability impact me? :
Exploiting this vulnerability can lead to a bypass of privilege restrictions, which may result in disruption or unavailability of the PcManager service.
What immediate steps should I take to mitigate this vulnerability?
To mitigate the privilege bypass vulnerability in PcManager, you should update the software to the latest version provided by Honor.
Honor has released software updates that remediate this issue, and devices with automatic update support will receive prompts to install the fix.
- Check if your PcManager version is 1.0.0.2, which is the affected version.
- Apply the official patch or update from Honor as soon as possible.
- Enable automatic updates if supported to ensure future vulnerabilities are patched promptly.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The provided information does not specify any direct impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA.